This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: KJvtqEUCGY5+/z2y9xr8UD6R3GytiTckeNDbnuCKHJM= Subject key identifier: 95:87:DC:DE:8F:80:B9:6C:8E:9D:0D:16:A8:F7:34:77:D9:E7:97:DE Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0378 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 1227 Signing time: Thu 18 Dec 2025 17:28:33 +0000 Manifest this update: Thu 18 Dec 2025 17:28:33 +0000 Manifest next update: Thu 25 Dec 2025 17:28:33 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: hqj8b1JrrCuETeRQl+GegoJxLtSBiW/hB0UO5OYF12c=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 888 (0x378) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Dec 18 17:28:33 2025 GMT Not After : Dec 25 17:28:33 2025 GMT Subject: CN=694439c1-0204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ac:4b:83:de:a1:b7:ee:8c:0e:93:32:c2:ff: a6:62:d4:5e:1b:95:5c:30:0c:da:ca:f1:88:af:5a: d6:27:c4:c1:7e:19:29:91:af:dc:3f:40:88:c2:2b: 6e:5c:1a:3a:d8:eb:69:f0:66:fa:1a:63:f0:d2:d7: a1:bc:44:8c:bc:f6:bd:05:6a:f0:22:f8:8b:7e:eb: 7c:1b:bf:fd:e2:75:37:5f:0f:3d:39:42:bd:dd:b8: 9c:ec:9f:49:de:1d:85:d2:db:c3:60:08:9c:21:e5: 07:82:a5:81:6d:ec:2a:93:ff:4b:26:49:08:43:65: 09:8a:a8:88:65:92:25:61:e7:e0:59:bb:b3:4e:32: 11:be:48:11:1b:c3:dc:47:bb:09:ef:ac:a8:ec:64: 34:71:c8:8c:08:50:25:e5:c6:21:65:e8:62:3d:d6: ce:0c:72:e9:d9:35:66:bf:42:58:94:bb:73:f4:d8: a1:9b:c3:d1:87:fc:fd:ad:bb:ee:40:61:06:bd:d0: 1d:93:36:87:c3:a8:9a:71:5c:e8:14:78:fe:b7:42: 0c:1d:46:4a:5e:fe:b9:d7:4f:02:24:ba:1f:40:44: 08:60:25:16:2d:cc:96:11:cf:dc:62:4a:7d:0e:08: e2:c9:dd:f9:99:20:e1:c2:89:0e:b6:b5:87:ad:06: 97:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:87:DC:DE:8F:80:B9:6C:8E:9D:0D:16:A8:F7:34:77:D9:E7:97:DE X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:f0:b8:37:3d:ee:6f:8a:cf:e4:10:83:b3:b8:25:8f:27:c7: 47:8e:42:d2:2c:86:7b:d3:7a:28:16:e2:e7:00:8e:f7:21:24: d9:2a:53:94:ae:be:24:15:5a:50:e1:91:65:b4:ff:19:98:11: b1:76:24:a0:77:4a:0c:13:e0:f7:23:92:da:e0:76:0c:6a:2e: 23:f8:fc:a4:49:b4:cd:5d:eb:df:ed:d4:dd:c4:c3:52:af:57: 9b:f3:29:98:0f:7e:70:f1:a8:99:ab:0a:b7:97:ca:bc:4f:56: 63:37:fe:1e:97:8a:01:9c:ff:19:07:01:56:3c:94:35:59:71: de:a7:b4:14:d1:17:6a:85:28:93:80:ca:54:dc:ae:0d:2f:01: 72:9a:e7:94:7f:2f:f2:e5:39:2e:21:5f:8d:e0:48:0d:40:b7: 62:cd:e4:67:c6:a1:b6:1e:10:06:c5:e7:9a:58:23:d6:50:88: e6:f2:34:55:43:64:f6:f2:ce:9e:2c:a0:eb:b9:60:a8:8a:09: 84:4e:49:80:9b:7a:19:33:e2:70:fa:94:da:e7:71:05:bb:a7: 25:d4:6a:53:ce:f3:70:8e:a5:de:0b:20:f8:9d:85:17:36:2a: d5:41:39:f2:21:c0:e0:9e:5d:1c:cf:4d:10:4c:09:5c:8e:2f: 0c:06:a4:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUxMjE4MTcyODMzWhcNMjUxMjI1MTcyODMzWjAYMRYwFAYD VQQDDA02OTQ0MzljMS0wMjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKxLg96ht+6MDpMywv+mYtReG5VcMAzayvGIr1rWJ8TBfhkpka/cP0CIwitu XBo62Otp8Gb6GmPw0tehvESMvPa9BWrwIviLfut8G7/94nU3Xw89OUK93bic7J9J 3h2F0tvDYAicIeUHgqWBbewqk/9LJkkIQ2UJiqiIZZIlYefgWbuzTjIRvkgRG8Pc R7sJ76yo7GQ0cciMCFAl5cYhZehiPdbODHLp2TVmv0JYlLtz9Nihm8PRh/z9rbvu QGEGvdAdkzaHw6iacVzoFHj+t0IMHUZKXv65108CJLofQEQIYCUWLcyWEc/cYkp9 Dgjiyd35mSDhwokOtrWHrQaXJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWH3N6P gLlsjp0NFqj3NHfZ55feMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV8Lg3Pe5vis/kEIOzuCWPJ8dHjkLSLIZ703ooFuLnAI73ISTZKlOU rr4kFVpQ4ZFltP8ZmBGxdiSgd0oME+D3I5La4HYMai4j+PykSbTNXevf7dTdxMNS r1eb8ymYD35w8aiZqwq3l8q8T1ZjN/4el4oBnP8ZBwFWPJQ1WXHep7QU0RdqhSiT gMpU3K4NLwFymueUfy/y5TkuIV+N4EgNQLdizeRnxqG2HhAGxeeaWCPWUIjm8jRV Q2T28s6eLKDruWCoigmETkmAm3oZM+Jw+pTa53EFu6cl1GpTzvNwjqXeCyD4nYUX NirVQTnyIcDgnl0cz00QTAlcji8MBqR6 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:19 2025 by rpki-client